CVE-2017-1000254: Buffer Overflow
First published: Tue Sep 26 2017(Updated: )
curl. An out-of-bounds read issue existed in the FTP PWD response parsing. This issue was addressed with improved bounds checking.
Credit: Max Dymond cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/curl | <7.56.0 | 7.56.0 |
| libcurl | =7.7 | |
| libcurl | =7.7.1 | |
| libcurl | =7.7.2 | |
| libcurl | =7.7.3 | |
| libcurl | =7.8 | |
| libcurl | =7.8.1 | |
| libcurl | =7.9 | |
| libcurl | =7.9.1 | |
| libcurl | =7.9.2 | |
| libcurl | =7.9.3 | |
| libcurl | =7.9.4 | |
| libcurl | =7.9.5 | |
| libcurl | =7.9.6 | |
| libcurl | =7.9.7 | |
| libcurl | =7.9.8 | |
| libcurl | =7.10 | |
| libcurl | =7.10.1 | |
| libcurl | =7.10.2 | |
| libcurl | =7.10.3 | |
| libcurl | =7.10.4 | |
| libcurl | =7.10.5 | |
| libcurl | =7.10.6 | |
| libcurl | =7.10.7 | |
| libcurl | =7.10.8 | |
| libcurl | =7.11.0 | |
| libcurl | =7.11.1 | |
| libcurl | =7.11.2 | |
| libcurl | =7.12.0 | |
| libcurl | =7.12.1 | |
| libcurl | =7.12.2 | |
| libcurl | =7.12.3 | |
| libcurl | =7.13.0 | |
| libcurl | =7.13.1 | |
| libcurl | =7.13.2 | |
| libcurl | =7.14.0 | |
| libcurl | =7.14.1 | |
| libcurl | =7.15.0 | |
| libcurl | =7.15.1 | |
| libcurl | =7.15.2 | |
| libcurl | =7.15.3 | |
| libcurl | =7.15.4 | |
| libcurl | =7.15.5 | |
| libcurl | =7.16.0 | |
| libcurl | =7.16.1 | |
| libcurl | =7.16.2 | |
| libcurl | =7.16.3 | |
| libcurl | =7.16.4 | |
| libcurl | =7.17.0 | |
| libcurl | =7.17.1 | |
| libcurl | =7.18.0 | |
| libcurl | =7.18.1 | |
| libcurl | =7.18.2 | |
| libcurl | =7.19.0 | |
| libcurl | =7.19.1 | |
| libcurl | =7.19.2 | |
| libcurl | =7.19.3 | |
| libcurl | =7.19.4 | |
| libcurl | =7.19.5 | |
| libcurl | =7.19.6 | |
| libcurl | =7.19.7 | |
| libcurl | =7.20.0 | |
| libcurl | =7.20.1 | |
| libcurl | =7.21.0 | |
| libcurl | =7.21.1 | |
| libcurl | =7.21.2 | |
| libcurl | =7.21.3 | |
| libcurl | =7.21.4 | |
| libcurl | =7.21.5 | |
| libcurl | =7.21.6 | |
| libcurl | =7.21.7 | |
| libcurl | =7.22.0 | |
| libcurl | =7.23.0 | |
| libcurl | =7.23.1 | |
| libcurl | =7.24.0 | |
| libcurl | =7.25.0 | |
| libcurl | =7.26.0 | |
| libcurl | =7.27.0 | |
| libcurl | =7.28.0 | |
| libcurl | =7.28.1 | |
| libcurl | =7.29.0 | |
| libcurl | =7.30.0 | |
| libcurl | =7.31.0 | |
| libcurl | =7.32.0 | |
| libcurl | =7.33.0 | |
| libcurl | =7.34.0 | |
| libcurl | =7.35.0 | |
| libcurl | =7.36.0 | |
| libcurl | =7.37.0 | |
| libcurl | =7.37.1 | |
| libcurl | =7.38.0 | |
| libcurl | =7.39 | |
| libcurl | =7.40.0 | |
| libcurl | =7.41.0 | |
| libcurl | =7.42.0 | |
| libcurl | =7.42.1 | |
| libcurl | =7.43.0 | |
| libcurl | =7.44.0 | |
| libcurl | =7.45.0 | |
| libcurl | =7.46.0 | |
| libcurl | =7.47.0 | |
| libcurl | =7.47.1 | |
| libcurl | =7.48.0 | |
| libcurl | =7.49.0 | |
| libcurl | =7.49.1 | |
| libcurl | =7.50.0 | |
| libcurl | =7.50.1 | |
| libcurl | =7.50.2 | |
| libcurl | =7.50.3 | |
| libcurl | =7.51.0 | |
| libcurl | =7.52.0 | |
| libcurl | =7.52.1 | |
| libcurl | =7.53.0 | |
| libcurl | =7.53.1 | |
| libcurl | =7.54.0 | |
| libcurl | =7.54.1 | |
| libcurl | =7.55.0 | |
| libcurl | =7.55.1 | |
| macOS High Sierra | <10.13.2 | 10.13.2 |
| macOS High Sierra | ||
| Apple El Capitan |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.debian.org/security/2017/dsa-3992
- http://www.securityfocus.com/bid/101115
- http://www.securitytracker.com/id/1039509
- https://access.redhat.com/errata/RHSA-2018:2486
- https://access.redhat.com/errata/RHSA-2018:3558
- https://curl.haxx.se/673d0cd8.patch
- https://curl.haxx.se/docs/adv_20171004.html
- https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E
- https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E
- https://security.gentoo.org/glsa/201712-04
- https://support.apple.com/HT208331
- https://support.apple.com/en-us/HT208331 (Advisory)
- https://github.com/curl/curl/commit/415d2e7cb7
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498396
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498397
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1498395
- https://bugzilla.redhat.com/show_bug.cgi?id=1495541
- https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E
- https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2017-13887
- CVE-2017-9798
- CVE-2017-13905
- CVE-2017-7172
- CVE-2017-13892
- CVE-2017-7171
- CVE-2017-7151
- CVE-2017-1000254
- CVE-2017-13872
- CVE-2017-15422
- CVE-2017-13883
- CVE-2017-7163
- CVE-2017-7155
- CVE-2017-13878
- CVE-2017-13875
- CVE-2017-7159
- CVE-2017-13848
- CVE-2017-13858
- CVE-2017-13847
- CVE-2017-7162
- CVE-2017-13904
- CVE-2017-5754
- CVE-2017-13862
- CVE-2017-13867
- CVE-2017-7173
- CVE-2017-13876
- CVE-2017-13855
- CVE-2017-13865
- CVE-2017-13868
- CVE-2017-13869
- CVE-2017-7154
- CVE-2017-13871
- CVE-2017-13860
- CVE-2017-3735
- CVE-2017-12837
- CVE-2017-7158
- CVE-2017-13911
- CVE-2017-13886
Frequently Asked Questions
What is the severity of CVE-2017-1000254?
CVE-2017-1000254 has a medium severity rating due to the potential for an out-of-bounds read that may lead to information leakage.
How do I fix CVE-2017-1000254?
To fix CVE-2017-1000254, upgrade libcurl to version 7.56.0 or later.
Which versions of libcurl are affected by CVE-2017-1000254?
CVE-2017-1000254 affects libcurl versions 7.7 through 7.55.1 inclusive.
What type of vulnerability is CVE-2017-1000254?
CVE-2017-1000254 is categorized as an out-of-bounds read vulnerability found in the FTP PWD response parsing.
Is CVE-2017-1000254 exploitable remotely?
Yes, CVE-2017-1000254 is exploitable remotely when libcurl connects to a malicious FTP server.
- agent/type
- agent/remedy
- agent/first-publish-date
- agent/weakness
- agent/author
- agent/severity
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2017-1000254
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/event
- agent/trending
- agent/source
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/tags
- agent/softwarecombine
- collector/apple-support
- package-manager/redhat
- vendor/haxx
- canonical/libcurl
- version/libcurl/7.7
- version/libcurl/7.7.1
- version/libcurl/7.7.2
- version/libcurl/7.7.3
- version/libcurl/7.8
- version/libcurl/7.8.1
- version/libcurl/7.9
- version/libcurl/7.9.1
- version/libcurl/7.9.2
- version/libcurl/7.9.3
- version/libcurl/7.9.4
- version/libcurl/7.9.5
- version/libcurl/7.9.6
- version/libcurl/7.9.7
- version/libcurl/7.9.8
- version/libcurl/7.10
- version/libcurl/7.10.1
- version/libcurl/7.10.2
- version/libcurl/7.10.3
- version/libcurl/7.10.4
- version/libcurl/7.10.5
- version/libcurl/7.10.6
- version/libcurl/7.10.7
- version/libcurl/7.10.8
- version/libcurl/7.11.0
- version/libcurl/7.11.1
- version/libcurl/7.11.2
- version/libcurl/7.12.0
- version/libcurl/7.12.1
- version/libcurl/7.12.2
- version/libcurl/7.12.3
- version/libcurl/7.13.0
- version/libcurl/7.13.1
- version/libcurl/7.13.2
- version/libcurl/7.14.0
- version/libcurl/7.14.1
- version/libcurl/7.15.0
- version/libcurl/7.15.1
- version/libcurl/7.15.2
- version/libcurl/7.15.3
- version/libcurl/7.15.4
- version/libcurl/7.15.5
- version/libcurl/7.16.0
- version/libcurl/7.16.1
- version/libcurl/7.16.2
- version/libcurl/7.16.3
- version/libcurl/7.16.4
- version/libcurl/7.17.0
- version/libcurl/7.17.1
- version/libcurl/7.18.0
- version/libcurl/7.18.1
- version/libcurl/7.18.2
- version/libcurl/7.19.0
- version/libcurl/7.19.1
- version/libcurl/7.19.2
- version/libcurl/7.19.3
- version/libcurl/7.19.4
- version/libcurl/7.19.5
- version/libcurl/7.19.6
- version/libcurl/7.19.7
- version/libcurl/7.20.0
- version/libcurl/7.20.1
- version/libcurl/7.21.0
- version/libcurl/7.21.1
- version/libcurl/7.21.2
- version/libcurl/7.21.3
- version/libcurl/7.21.4
- version/libcurl/7.21.5
- version/libcurl/7.21.6
- version/libcurl/7.21.7
- version/libcurl/7.22.0
- version/libcurl/7.23.0
- version/libcurl/7.23.1
- version/libcurl/7.24.0
- version/libcurl/7.25.0
- version/libcurl/7.26.0
- version/libcurl/7.27.0
- version/libcurl/7.28.0
- version/libcurl/7.28.1
- version/libcurl/7.29.0
- version/libcurl/7.30.0
- version/libcurl/7.31.0
- version/libcurl/7.32.0
- version/libcurl/7.33.0
- version/libcurl/7.34.0
- version/libcurl/7.35.0
- version/libcurl/7.36.0
- version/libcurl/7.37.0
- version/libcurl/7.37.1
- version/libcurl/7.38.0
- version/libcurl/7.39
- version/libcurl/7.40.0
- version/libcurl/7.41.0
- version/libcurl/7.42.0
- version/libcurl/7.42.1
- version/libcurl/7.43.0
- version/libcurl/7.44.0
- version/libcurl/7.45.0
- version/libcurl/7.46.0
- version/libcurl/7.47.0
- version/libcurl/7.47.1
- version/libcurl/7.48.0
- version/libcurl/7.49.0
- version/libcurl/7.49.1
- version/libcurl/7.50.0
- version/libcurl/7.50.1
- version/libcurl/7.50.2
- version/libcurl/7.50.3
- version/libcurl/7.51.0
- version/libcurl/7.52.0
- version/libcurl/7.52.1
- version/libcurl/7.53.0
- version/libcurl/7.53.1
- version/libcurl/7.54.0
- version/libcurl/7.54.1
- version/libcurl/7.55.0
- version/libcurl/7.55.1
- vendor/apple
- canonical/macos high sierra
- canonical/apple el capitan